$ rpki-client -vvf rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa File: DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa (raw, json) Hash identifier: 9BjSNtNI0t5KFZOPEwLsrwtwuYFD1A/cyJU1JZKxEKU= Subject key identifier: 53:68:4C:AB:3F:AA:C6:86:CF:32:EC:AC:86:97:56:55:C3:8C:E2:8F Certificate issuer: /CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Certificate serial: 03C6 Authority key identifier: 9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa Signing time: Thu 15 Aug 2024 01:23:13 +0000 ROA not before: Thu 15 Aug 2024 01:23:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134596 IP address blocks: 103.121.28.0/23 maxlen: 23 103.121.28.0/24 maxlen: 24 103.121.29.0/24 maxlen: 24 103.121.30.0/24 maxlen: 24 103.121.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 966 (0x3c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Validity Not Before: Aug 15 01:23:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bd5881-24af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:54:b1:aa:d3:58:16:8f:31:a9:9d:08:fb:d3: 9a:01:66:f6:a8:50:fa:04:6c:43:8c:ec:54:a0:9f: e1:74:f4:ee:28:9f:ee:65:14:2c:30:f1:62:5c:f2: ef:64:47:38:14:da:ad:f5:f8:d6:ca:92:ca:c6:7c: 01:ff:93:85:0e:b1:e6:8c:55:66:85:bc:5b:6d:2c: b8:22:6f:41:bf:3f:63:99:d0:8c:03:a0:62:ae:cf: 57:da:12:65:c5:4c:7e:11:71:ee:a1:ba:7e:8a:1c: db:a8:26:52:56:6d:d8:84:de:d9:d9:7b:b4:95:d8: d0:91:39:70:6c:ef:a3:da:93:30:1c:01:32:15:25: 20:e5:77:10:1a:7c:37:ce:cc:23:c4:2d:14:98:9b: a9:38:cf:6f:c2:3f:3a:4d:cf:47:7b:18:10:33:3e: c4:be:5d:7a:61:04:7c:9e:84:82:4c:53:a1:b7:a3: 9c:23:e5:8b:09:bf:a2:ed:e2:d2:a0:9e:35:1a:f4: f3:60:03:10:96:4a:6d:0f:33:61:49:1d:6c:31:75: b9:d4:b8:0f:3f:38:fa:24:f4:90:09:74:90:24:41: 8c:3a:fb:06:b6:26:dc:e1:be:96:cf:a9:ef:25:bc: 8a:7f:eb:af:dd:ea:b8:78:62:55:4b:af:75:f2:ee: 34:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:68:4C:AB:3F:AA:C6:86:CF:32:EC:AC:86:97:56:55:C3:8C:E2:8F X509v3 Authority Key Identifier: keyid:9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.28.0/22 Signature Algorithm: sha256WithRSAEncryption a5:09:17:f1:d4:84:16:10:46:d6:09:d7:8c:14:9e:dd:33:71: 0d:2d:f6:53:db:f2:ec:3d:9f:62:4d:0e:2b:b8:36:c1:da:39: 4b:15:1a:e3:2b:24:5a:82:8c:bc:5e:ac:d8:72:62:9e:e7:b4: 0c:8a:ec:4c:c5:bb:a8:df:c3:2a:fc:b5:b6:76:04:24:b8:77: bb:fc:f3:ed:1d:1d:3b:84:d9:b6:b0:00:f0:31:cb:44:c3:66: ef:df:78:c0:a2:73:bf:79:0c:da:0d:06:8e:6e:5b:23:f2:5e: eb:ca:38:be:aa:3e:5b:50:e8:7c:c2:d1:83:b5:95:d4:97:20: f5:89:ea:28:23:59:e6:e9:0c:61:22:23:cc:09:6a:6c:d0:29: 4d:2c:e4:84:0b:25:a2:0c:db:52:f4:c7:21:ab:48:e2:9e:c1: 8c:27:3c:0d:bd:55:c0:c5:39:d7:70:3c:e9:8b:9f:c0:fd:89: 87:b3:e5:7c:fd:80:dd:97:f6:63:54:7d:19:d5:d4:5c:48:14: 63:40:68:28:a9:20:27:d9:ec:f7:35:02:7e:61:74:b1:5b:59: f3:02:91:4f:ae:fd:02:b8:b3:93:e4:3c:2b:52:8b:07:b2:2e: de:dd:80:79:fa:8e:c8:56:c1:45:8a:de:5e:ec:3f:fe:ac:c9: 7f:7d:55:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NTAxMTAvBgNVBAUTKDlDREY4Q0U5MEJGNzlGOEMxNDhEMUY3NjFGOTk0RDgy MUIyNDlDNzEwHhcNMjQwODE1MDEyMzEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkNTg4MS0yNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31SxqtNYFo8xqZ0I+9OaAWb2qFD6BGxDjOxUoJ/hdPTuKJ/uZRQsMPFiXPLv ZEc4FNqt9fjWypLKxnwB/5OFDrHmjFVmhbxbbSy4Im9Bvz9jmdCMA6Birs9X2hJl xUx+EXHuobp+ihzbqCZSVm3YhN7Z2Xu0ldjQkTlwbO+j2pMwHAEyFSUg5XcQGnw3 zswjxC0UmJupOM9vwj86Tc9HexgQMz7Evl16YQR8noSCTFOht6OcI+WLCb+i7eLS oJ41GvTzYAMQlkptDzNhSR1sMXW51LgPPzj6JPSQCXSQJEGMOvsGtibc4b6Wz6nv JbyKf+uv3eq4eGJVS6918u40awIDAQABo4IClTCCApEwHQYDVR0OBBYEFFNoTKs/ qsaGzzLsrIaXVlXDjOKPMB8GA1UdIwQYMBaAFJzfjOkL95+MFI0fdh+ZTYIbJJxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ1MC9COTgxNzFEQTUz NDYxMUVDOUI5MEE0N0JDNEY5QUUwMi9uTi1NNlF2M240d1VqUjkySDVsTmdoc2tu SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OLU02UXYzbjR3VWpSOTJINWxOZ2hza25IRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NTAvQjk4MTcxREE1MzQ2MTFFQzlCOTBBNDdCQzRGOUFFMDIvRERFMkJCN0M1 MzQ4MTFFQzhGRkJEQjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneRwwDQYJKoZIhvcNAQELBQADggEBAKUJF/HUhBYQRtYJ 14wUnt0zcQ0t9lPb8uw9n2JNDiu4NsHaOUsVGuMrJFqCjLxerNhyYp7ntAyK7EzF u6jfwyr8tbZ2BCS4d7v88+0dHTuE2bawAPAxy0TDZu/feMCic795DNoNBo5uWyPy XuvKOL6qPltQ6HzC0YO1ldSXIPWJ6igjWebpDGEiI8wJamzQKU0s5IQLJaIM21L0 xyGrSOKewYwnPA29VcDFOddwPOmLn8D9iYez5Xz9gN2X9mNUfRnV1FxIFGNAaCip ICfZ7Pc1An5hdLFbWfMCkU+u/QK4s5PkPCtSiweyLt7dgHn6jshWwUWK3l7sP/6s yX99Vdc= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org